Actually, I have a CentOS 8 server which is executing brute force attack to other servers. But I have no idea what application or process is performing this attack.
I wish to know if there's any tool which allows me to know all outgoing address associated with which process name with a timestamp.
It will be better if this can be viewed through a log file as I don't know when the brute force attack will be launched. Once I get notified about the brute force, I'll then check the log file to know the root process.
